CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9478

The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST) and DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices sets the CM MAC address to a value with a two-byte offset from the MTA/VoIP MAC address, which indirectly allows remote attackers to discover hidden Home Security Wi-Fi networks by leveraging the embedding of the MTA/VoIP MAC address into the DNS hostname.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.1%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2017-9478

Cisco » Dpc3939 » Version: N/A

cpe:2.3:h:cisco:dpc3939:-
Cisco » Dpc3939 Firmware » Version: dpc3939-p20-18-v303r20421733-160420a-cmcst

cpe:2.3:o:cisco:dpc3939_firmware:dpc3939-p20-18-v303r20421733-160420a-cmcst
Cisco » Dpc3939 Firmware » Version: dpc3939-p20-18-v303r20421746-170221a-cmcst

cpe:2.3:o:cisco:dpc3939_firmware:dpc3939-p20-18-v303r20421746-170221a-cmcst

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9478

Products

Pricing

Contact Us